The Linux Netfilter Firewall That Will (Hopefully) Do Everything

Firewalling is something that every systems/network administrator and user should take seriously.  You may have a firewall or NAT router sitting in front of your entire network, but that only protects you from outside threats.  Inside threats still pose a huge risk, and a machine firewall can help reduce your attack surface.

We've spent years trying to find the perfect firewall for our Linux Netfilter/iptables machines, and found that while many mostly do what we need to do, none do everything we need to do or offer us the flexibility to override what they do.

So began Firewall/SOSDG - our second major security software project.  Like many open source/free software projects, it was created to fit the needs of its authors to the letter.  And like many projects, it is expanding to a more general purpose tool that everyone can use.

Developers

Brielle Bruns (bruns@2mbit.com) - Original author and primary developer